Comments
-
I think this is the only solution. I had to remove kb5009624 due to Hyper V issues and KB5009557 due to Refs bugs. Happy new year! What a start :)
-
@"james.carson" Thank you. /Robert
-
@"james.carson" Yes, but to be a bit fair this is the amount used by all 4 authpoint services combined, but still nearly 700MB for just one of them. I not sure this qualifies as a lightweight client. I am on the latest version. /Robert
-
Yes
-
Both end´s. Both your firebox needs to know the routes (which it does or you would not be able to route to the mpls networks from inside your 192.168.1.0 subnet. My guess is 192.168.1.2 need to know where to route 192.168.251.0/24. I laso guess this is a managed service by your ISP, so most likely you need to contact your…
-
192.168.1.2 has to know where to route 192.168.251.0/24 to. That´s via 192.168.1.1 (firebox).
-
Do 192.168.1.2 know how to route traffic to 192.168.251.0/24 ?
-
I know it´s not good, but to be fair, i think Windows OS has become a very complex OS with tons of dependencies.
-
@Sinbomb Then i guess, if you change the server ip address configured External Identity (LDAP), you have configured plus add the new AD server as a secondary gateway to the already configured gateway should do it. Afterwords you can make the secondary gateway the primary with the option "Make primary".
-
If i understand you right the ad ldap database is the same and only the server having the role as DC has changed. Then no users will be effected. You need to install the gateway and add it to existing cloud config.
-
@"james.carson" I´ll grab a support file on the next cluster i upgrade if i see the same error message. /robert
-
@"james.carson" I can for sure say, there is only valid UTF-8 characters in my configuration. The error message came the same second the upgrade started. This morning when i checked the cluster the error message is gone. Searching in Dimension and cloud logging do not even shows these error logs, so it seems it has not…
-
@"james.carson" Ahh, thank you. Of cause, missed that part! /Robert
-
Hi @"james.carson" It was just to explain that due to the fact we a customer where where are renting our devices, we cannot directly contact support, as we cannot create a support case as Watchguard support system cannot find our devices from the Cloud interface. So we are unable to proceed when trying to create a support…
-
@"james.carson" Thanks. I know, but i had limited time and duo to the way, i currently create support cases, i did not have time to wait for a conversation to start up. (If you need to know mere about my "special" case you can contact Adrian Lahovary @ Watchguard). /Robert
-
I had the same issue today: Authentication denied due error related with the MSChap v2 This was when i was testing ikev2 authentication to my secondary AuthPoint gateway and was caused by the fact, i had not created a Radius client on my NPS server where my primary AuthPoint gateway was running. I only noticed because the…
-
@"james.carson" Thank you. So the error number is a specific ios error? If the auth point client throughts a error number, will this always be from the underlaying OS?
-
@"james.carson" Thanks.
-
@"james.carson" Yep, total end user mistake :) Need vacation soon.
-
This was caused by mismatch is username where MS AD was in all lower capital letters and the Watchguard username had a Upper capital letter.
-
@"james.carson" Case opened, 01621129. /Robert
-
@"james.carson" Thanks. It was one of the first things i tried, and just tried again, but it does not solve the issue. I have updates my case with this info. Case number 01619709. /Robert
-
> @"james.carson" said: > Hi @"rv@kaufmann.dk" > If you're using NPS to integrate with AD, we get the group info via attribute 11 (FilterID) in the RADIUS access-accept. If NPS wasn't providing this before, the firewall will assume no group. @"james.carson" Thanks. But is that part not Missing from the guide i have linked…
-
Case opened 01613256
-
I have opened a case, 01619709
-
> @morpheus27 said: > Thanks. I suppose the following takes me to the same place? > Policy Manager - VPN - IKEv2 Shared Settings... > > This is the default settings: > SHA2-256-AES (256-bit) | D-H Group14 > SHA1-AES (256-bit) | D-H Group5 > SHA1-AES (256-bit) | D-H Group2 > SHA1-3DES | D-H Group2 > > Can I just edit the…
-
Thank you
-
@"james.carson" This i have noticed on existing ones where the template has been upgraded from ealier versions. Robert
-
@"kimmo.pohjoisaho" Thank you
-
I don´t know what to say about WG support. I´m impressed how bad the support is sometimes. I wrote to the support person after some conversation, if he did not know the answer then escalate the case. He´s response: Please take notes that I'm not here to give you an answer to your problem, I'm here to gather all the…